Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Real Networks RealPlayer < 15.0.4.53 Multiple Vulnerabilities

High

Synopsis

The remote host is running an application that is vulnerable to multiple attack vectors.

Description

The remote host is running RealPlayer, a multi-media application.

RealPlayer builds earlier than 15.0.4.53 are potentially affected by multiple vulnerabilities :

- A memory corruption error exists related to the handling of 'MP4' files. (CVE-2012-1904)

- An unspecified error exists related to the parsing of 'RealMedia ASMRuleBook' files that can lead to remote arbitrary code execution. (CVE-2012-2406)

- A buffer overflow exists related to the parsing of 'RealJukebox Media' content. (CVE-2012-2411)

Solution

Upgrade to RealPlayer 15.0.4.53 or later.